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Docket No.: SON-2320 
(PATENT) 

IN THE UNITED STATES PATENT AND TRADEMARK OFFICE 



In re Patent Application of: 
Makoto OKA et al. 

Application No.: 10/041 ,964 Confirmation No.: 4260 

Filed: January 9, 2002 Art Unit: 2134 

For: PUBLIC KEY CERTIFICATE ISSUING Examiner: W. S. Powers 

SYSTEM, PUBLIC KEY CERTIFICATE 
ISSUING METHOD, DIGITAL 
CERTIFICATION APPARATUS, AND 
PROGRAM STORAGE MEDIUM 



REQUEST FOR PRE-APPEAL BRIEF PANEL REVIEW OF FINAL REJECTION 

MS AF 

Commissioner for Patents 

P.O. Box 1450 

Alexandria, VA 22313-1450 

Dear Sir: 

This is in full and timely response to the Final Ofifice Action mailed on April 12, 

2007. 



The rejections found within the Final Office Action are traversed at least for the 
following reasons: 



Claims 1-36 are present within the above-identified application, with claims 1,14, 23, 
and 36 being independent. 

Pase 4 includes a rejection of claims 1-3, 5, 6, 9, 10, 12-17. 19, 20, 22-25. 27, 28. 31. 32 
and 34-36 under 35 U.S.C. iS 102 fb) in view of U.S. Fat. No. 6.035.402 to Vaeth et al. 
rVaeth"). 




Vaeth - Vaeth arguably discloses a Virtual Certificate Authority where requests for a 
certificate and verification information are directed to the Certificate Authority (CA) from a 
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plurality of entities, via a Request Authority (RA). InVaeth: 

• The CA implements generic or specialized certificate ftinctions based on the 
requesting entity . Col. 7, 11. 36-40. Multiple entities may request different 
certificates via a single RA. The CA issues each type of certificate by using a 
different crypto-card to perform to associating cryptography functions, thereby 
creating a 1-to-l relationship between certificate types and entity types (i.e., 1 
certificate per entity) . 

• The absence of a relationship between RAs and types of certificates allows two 
RAs to obtain similar certificates, and for the implementation of joint certification 
by multiple RAs . Elements 180 and 188; Col. 7, 11. 49-59. 

The Examiner cites Vaeth Col. 7, 11. 41-47, Col. 8, 1. 48 - Col 9, 1. 12, for the allegation 
that Vaeth does in fact teach that, ''said identification of the assigned algorithm [is] made with 
reference to a table that associates the registration authority with the assigned encryption 
algorithm'^ 

The cited portion of Vaeth only indicates that the RA acts as a gatekeeper between the 
transacting entity and the CA. Col. 8, 11. 35-48. The fact that the RA plays no role in certificate 
selection allows the RA to process certificates for various types of entities. Col. 8, 1. 48 - Col 9, 
1. 12. There is no indication whatsoever that any information pertaining to the RA plays any role 
within Vaeth's crypto-card/certification selection scheme. For example, Vaeth selects which 
algorithms to perform and certifications to issue based on the entity that is requesting the 
certificate, by associating specific cryptographic fijnctions (or groups of functions) with 
merchant requests, another with cardholder requests, and yet another with payment gateway 
requests. Col. 7, 11. 31-32. 

Furthermore, the fact that Vaeth's disclosure teaches joint certification and distributed 
certification further distinguishes Vaeth from a certification selection process based on the 
requesting RA. If the certificate in Vaeth were assigned based on the requesting RA, then no 
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two RAs would be able to issue similar certificates and the joint or distributed certification 
scheme would be impossible. Accordingly, a certification method that selects different 
certificates based on the requesting RA (as disclosed by applicant) is contrary to purpose of 
using multiple RAs to issue the same types of certificates (as disclosed by Vaeth). 

Thus, WaQth fails to disclose, teach, or suggest that said identification of the assigned 
algorithm [is] made with reference to a table that associates the registration authority with the 
assigned encryption algorithm. 

Withdrawal of this rejection and allowance of the claims is respectfully requested. 

Page 11 includes a rejection of claims 4. 7. 26. and 29 under 35 U.S.C S 103(a) over 
Vaeth in view of U.S. Pat No. 6.202 J57 to Brownlie et al. r^Brownlie^n. 

Brownlie - Brownlie discloses a network security system capable of applying security 
policy provisions issued at a centralized authority to various network nodes, which in turn verify 
the policy provisions using digital signatures associated with the central authority. 

However, Brownlie fails to teach or suggest a certification scheme that associates the 
registration authority with an assigned encryption algorithm. 

Thus, Brownlie to disclose, teach, or suggest that said identification of the assigned 
algorithm [is] made with reference to a table that associates the registration authority with the 
assigned encryption algorithm. 

Withdrawal of this rejection and allowance of the claims is respectfully requested. 

Page 12 includes a reiection of claims 8, 18. and 30 under 35 U.S.C. S 103(a) over 
Vaeth in view of Boneh et aL, "On the Importance of Checking Cryptographic Protocols 
for Faults^^ (*^Boneh"), 

Boneh - Boneh describes how various authentication protocols can be broken using 
hardware faults. 
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However, Brownlie fails to teach or suggest the distribution of encrypted certificates. 

Thus, Boneh fails to disclose, teach, or suggest that said identification of the assigned 
algorithm [is] made with reference to a table that associates the registration authority with the 
assigned encryption algorithm. 

Withdrawal of this rejection and allowance of the claims is respectfully requested. 

Page 12 includes a rejection of claims 11. 21. and 33 under 35 U,S>C. S 103fa) over 
Vaeth in view of U.S. Patent No. 6.675,296 to Boeven et ah ("Boeven^^) 

Boeven - Boeyen discloses a certificate issuing apparatus and method to facilitate 
converting certificates between different formats. The Boeyen apparatus employs a series of 
templates representing different certificate formats, and maps the relevant data between the 
different formats. 

However, Brownlie fails to teach or suggest a certification scheme or associating a 
registration authority with an encryption algorithm 

Boeven fails to disclose, teach, or suggest that said identification of the assigned 
algorithm [is] made with reference to a table that associates the registration authority with the 
assigned encryption algorithm. 

Withdrawal of this rejection and allowance of the claims is respectfiilly requested. 
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Applicant notes that the due date for this brief, being Saturday, May 12, 2005. Since 



this "due date falls on [a] Saturday. . . within the District of Columbia, the action may be taken, 
or the fee paid, on the next succeeding business day which is not a Saturday, Sunday, or a 
Federal holiday." 37 C.F.R. § 1.7. Accordingly, this filing is timely as filed on May 14, 2005, 
and no extension fee is due. However, if any fee is required or any overpayment made, the 
Commissioner is hereby authorized to charge the fee or credit the overpayment to Deposit 
Account # 18-0013. 

Dated: May 14, 2007 Respectful ly^mittedy/ 




Registration No.: 40,290 
RADER, FISHMAN & GRAUER PLLC 
Correspondence Customer Number: 23353 
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